Amendments to the Claims 

The following Listing of Claims will replace all prior versions and listings of claims in 
the appHcation. 

Listing of Claims 

1-23. (Cancelled). 

24. (Currentiy amended) A method of enrolling n etworked resources via an enrollment 
system communicating with an enrollment administration system permitting enrollment based on 
enrollment rules stored in an enrollment database, the method comprising : 

receiving, by an enrollment administration system executing on a computing machine, a 
request from an enrollment system to enroll a networked resource for a user, the request 
comprising at least an identiFication of the user and an identification of the networked resource: 

identifying, by the enrollment administration system, spocifying an enrollment rule stored 
in an enrollment database, the rul e , the onrollmont rule identifying a group of one or more users 
permitted to enroll the o ne or more n etworked resource, the group comprising at least the user 
r e sourc e s for authorized remote access ; 

enrollin g, by the enrollment administration system, the networked resource for the %v-a 
user responsive to determining the user has permission to enroll and use the networked resource 
of the one or more users a first networked resource of the one or more network resources if 
permitted by the specified onrollmont rule ; and 

granting the user feeaete-access to the fifst-networked resource from a remote device if 
th e us e r had pr e viously succ e ssfiiUy e nroll e d th e first n e twork e d r e sourc e via th e e nrollm e nt 
syst e m; and 

denying tho usor romoto access to tho first notworkcd resource from tho romoto dovico if 
the user had not previously successfully enrolled the first networked resource via the onrollmont 
systsm. 

25. (Currently amended) The method of claim 24 wherein the first-networked resource is a 
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computer. 



26. (Currently amended) The method of claim 24 wherein identifying specifying an 
enrollment rule further comprises: defining a plurality of groups of users; defining a plurality of 
groups of networked resources; and specifying a group of networked resources that a group of 
users is permitted to enroll. 

27. (Currently amended) The method of claim 24 wherein enrolling the fest-networked 
resource is disallowed fi-om a remote console. 

28. (Currently amended) The method of claim 24 wherein enrolling the first-networked 
resource requires the user to enroll from a console physically attached to the fifst-networked 
resource. 

29. (Currently amended) The method of claim 24 wherein granting access to the fi4=st 
networked resource fiirther comprises granting access to the desktop of the fest-networked 
resource. 

30. (New) The method of claim 24 wherein the enrollment administration system is a 
network application. 

3 1 . (New) The method of claim 24 fiirther comprising determining, by a locator system, a 
location of the user. 

32. (New) The method of claim 3 1 fiirther comprising enrolling the networked resource 
based on the location of the user. 

33. (New) The method of claim 24 fiirther comprising denying access to the networked 
resources upon determining the user had not previously successfiiUy enrolled the networked 
resource via the enrollment administration system. 
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34. (New) A system for enrolling networked resources via an enrollment system 
communicating with an enrollment administration system permitting enrollment based on 
enrollment rules stored in an enrollment database, the system comprising: 

an enrollment administration system executing on a computing machine and 
communicating with an enrollment system, the enrollment administration system: 

receiving a request from the enrollment system to enroll a networked resource for 
a user, the request comprising at least an identification of the user and an identification of 
the networked resource, 

identifying an enrolhnent rule stored in an enrollment database, the rule 
identifying a group of users permitted to enroll the networked resource, the group 
comprising at least the user, 

enrolling the networked resource for the user responsive to determining the user 
has permission to enroll and use the networked resource, and 

granting the user access to the networked resource. 

35. (New) The system of claim 34 wherein the networked resource is a computer. 

36. (New) The system of claim 34 wherein the enrollment administration system identifies an 
enrollment rule by: defining a plurality of groups of users; defining a plurality of groups of 
networked resources; and specifying a group of networked resources that a group of users is 
permitted to enroll. 

37. (New) The system of claim 34 wherein the enrollment administration system does not 
have permission to enroll the networked resource from a remote console. 

38. (New) The system of claim 34 wherein the enrollment administration system requires the 
user to enroll from a console physically attached to the networked resource. 

39. (New) The system of claim 34 wherein the enrollment adminisfration system grants 
access to the desktop of the networked resoiirce. 
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40. 



(New) The system of claim 34 wherein the enrollment system is a network application. 



4 1 . (New) The system of claim 34 further comprising a locator system determining a location 

of the user. 

42. (New) The system of claim 41 wherein the enrollment administration system enrolls the 
networked resource based on the location of the user. 

43. (New) The system of claim 34 wherein the enrollment administration system denies 
access to the networked resources upon determining the user had not previously successfully 
enrolled the networked resource via the enrollment administration system. 
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